Category: deep packet inspection
Packetloop’s Threat Analysis feature allows you to step through attacks play by play to accurately confirm indicators of compromise with real evidence. This screencast follows on from my last post “From Indicators of Compromise to Smoking Guns“. As you can see security analysts have the […]
Read more
In a previous post I used the intuitive visualization in Packetloop to zero in on a particular attacker that had targeted at least two systems with indicators suggesting Warez related FTP and the delivery of shellcode. The analysis at that time was interesting but hardly a […]
Read more
Introduction Context is King when it comes to understanding and analysing attacks and attackers. Today we are releasing the analysis feature for the Threats module. Internally we call this feature “play by play” and it does exactly that. It allows you to peer inside every […]
Read more